Bump minimist and html-to-text

[dependabot]

Bumps minimist and html-to-text. These dependencies needed to be updated together.
Updates minimist from 1.2.0 to 1.2.6

Commits

• 7efb22a 1.2.6
• ef88b93 security notice for additional prototype pollution issue
• c2b9819 isConstructorOrProto adapted from PR
• bc8ecee test from prototype pollution PR
• aeb3e27 1.2.5
• 278677b 1.2.4
• 4cf1354 security notice
• 1043d21 additional test for constructor prototype pollution
• 6457d74 1.2.3
• 38a4d1c even more aggressive checks for protocol pollution
• Additional commits viewable in compare view

Updates html-to-text from 4.0.0 to 8.2.1

Changelog

Sourced from html-to-text's changelog.

Version 8.2.1

No changes in the package. Bumped dev dependencies and regenerated package-lock.json.

Version 8.2.0

Fix for the issue #249 and possibly other obscure issues when some selector options are ignored. options.selectors array was not fully processed before.

Version 8.1.1

Bump minimist dependency, regenerate package-lock.json.

Version 8.1.0

• Fix for too many newlines in certain cases when preserveNewlines option is used. Addresses #232;
• Link and image formatters now have a linkBrackets option - it accepts an array of two strings (default: ['[', ']']) or false to remove the brackets. Addresses #236;
• noLinkBrackets formatters option is now deprecated.

All commits: 8.0.0...8.1.0

Version 8.0.0

All commits: 7.1.1...8.0.0

Version 8 roadmap issue: #228

Selectors

The main focus of this version. Addresses the most demanded user requests (#159, #179, partially #143).

It is now possible to specify formatting options or assign custom formatters not only by tag names but by almost any selectors.

See the README Selectors section for details.

Note: The new selectors option is an array, in contrast to the tags option introduced in version 6 (and now deprecated). Selectors have to have a well defined order and object properties is not a right tool for that.

Two new packages were created to enable this feature - parseley and selderee.

Base elements

The same selectors implementation is used now to narrow down the conversion to specific HTML DOM fragments. Addresses #96. (Previous implementation had more limited selectors format.)

BREAKING CHANGE: All outermost elements matching provided selectors will be present in the output (previously it was only the first match for each selector). Addresses #215.

limits.maxBaseElements can be used when you only need a fixed number of base elements and would like to avoid checking the rest of the source HTML document.

Base elements can be arranged in output text in the order of matched selectors (default, to keep it closer to the old implementation) or in the order of appearance in source HTML document.

BREAKING CHANGE: previous implementation was treating id selectors in the same way as class selectors (could match <foo id="a b"> with foo#a selector). New implementation is closer to the spec and doesn't expect multiple ids on an element. You can achieve the old behavior with foo[id~=a] selector in case you rely on it for some poorly formatted documents (note that it has different specificity though).

... (truncated)

Commits

• See full diff in compare view

Maintainer changes

This version was pushed to npm by killy.mxi, a new releaser for html-to-text since your current version.

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
• @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
• @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
• @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
• @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language

You can disable automated security fix PRs for this repo from the Security Alerts page.

[dependabot]

Superseded by #40.